Photo: Getty Images

A few weeks ago, a St. Louis-based investment advisory firm settled charges with the Securities and Exchange Commission over allegations that it failed to implement even threadbare cyber security policies and procedures in advance of a 2013 breach of its server, which was hosted by a third party.

The attack, which investigators ultimately traced to China, resulted in the compromise of thousands of the firm’s clients’ personally identifiable information, or PII, according to the SEC.

Nick Thornton

Nick Thornton is a financial writer covering retirement and health care issues for BenefitsPRO and ALM Media. He greatly enjoys learning from the vast minds in the legal, academic, advisory and money management communities when covering the retirement space. He's also written on international marketing trends, financial institution risk management, defense and energy issues, the restaurant industry in New York City, surfing, cigars, rum, travel, and fishing. When not writing, he's pushing into some land or water.

More from this author



Join BenefitsPRO

Don’t miss crucial news and insights you need to navigate the shifting employee benefits industry. Join now!

  • Unlimited access to - your roadmap to thriving in a disrupted environment
  • Access to other award-winning ALM websites including and
  • Exclusive discounts on and ALM events.

Already have an account? Sign In Now
Join BenefitsPRO

Copyright © 2023 ALM Global, LLC. All Rights Reserved.